Fix xDS missing endpoint race condition. (7d8764dc) · Commits · gitlab-org / build / omnibus-mirror / consul · JiHu GitLab

Snippets Groups Projects

Commit 7d8764dc authored 1 year ago by

Derek Menteer

Fix xDS missing endpoint race condition.

This fixes the following race condition:
- Send update endpoints
- Send update cluster
- Recv ACK endpoints
- Recv ACK cluster

Prior to this fix, it would have resulted in the endpoints NOT existing in
Envoy. This occurred because the cluster update implicitly clears the endpoints
in Envoy, but we would never re-send the endpoint data to compensate for the
loss, because we would incorrectly ACK the invalid old endpoint hash. Since the
endpoint's hash did not actually change, they would not be resent.

The fix for this is to effectively clear out the invalid pending ACKs for child
resources whenever the parent changes. This ensures that we do not store the
child's hash as accepted when the race occurs.

An escape-hatch environment variable `XDS_PROTOCOL_LEGACY_CHILD_RESEND` was
added so that users can revert back to the old legacy behavior in the event
that this produces unknown side-effects. Visit the following thread for some
extra context on why certainty around these race conditions is difficult:
https://github.com/envoyproxy/envoy/issues/13009



This bug report and fix was mostly implemented by @ksmiley with some minor
tweaks.

Co-authored-by: Keith Smiley <ksmiley@salesforce.com>

parent d93f7f73

Hide whitespace changes

Inline Side-by-side

Showing with 184 additions and 7 deletions

gitlab_cn_mirroring_bot @gitlab-cn-mirroring-bot
mentioned in commit 32745ca0
· 1 year ago

mentioned in commit 32745ca0

mentioned in commit 32745ca0eb9c998a1f262beeb404afa60ca13d3f

Toggle commit list
gitlab_cn_mirroring_bot @gitlab-cn-mirroring-bot
mentioned in commit f80fc2b5
· 1 year ago

mentioned in commit f80fc2b5

mentioned in commit f80fc2b5488bf4725f675d9db9af2ad2177cf575

Toggle commit list

Please register or to comment